diff options
author | Stef Walter <stef@memberwebs.com> | 2010-03-11 01:01:49 +0000 |
---|---|---|
committer | Stef Walter <stef@memberwebs.com> | 2010-03-11 01:06:40 +0000 |
commit | ddde90fc1afd45322bce25687661d515736b83c0 (patch) | |
tree | fbc9e2c65aa8378b0c6fb2a029618ec4e57306ae /module/mod_auth_singleid.c | |
parent | 6af3bb221658269181d80c557d264142c2fe3daf (diff) |
Properly escape the URL used for return to and realm.
The url path provided by apache was not escaped. Make sure
to escape it before use.
Diffstat (limited to 'module/mod_auth_singleid.c')
-rw-r--r-- | module/mod_auth_singleid.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/module/mod_auth_singleid.c b/module/mod_auth_singleid.c index 4520009..bff48fb 100644 --- a/module/mod_auth_singleid.c +++ b/module/mod_auth_singleid.c @@ -963,7 +963,7 @@ sid_request_url (sid_request_t *req, int with_path) host = req->rec->hostname ? req->rec->hostname : ap_get_server_name (req->rec); scheme = is_ssl ? "https" : "http"; port = ap_get_server_port (req->rec); - uri = with_path && req->rec->uri ? req->rec->uri : ""; + uri = with_path && req->rec->uri ? ap_escape_uri (req->rec->pool, req->rec->uri) : ""; /* Default ports? */ if ((port == 80 && !is_ssl) || (port == 443 && is_ssl)) |